ISO 27001:2005 ISMS Implementation Course
|
 |
Recent high profile information security breaches and the value of information are highlighting the ever increasing need for organisations to protect their information. An Information Security Management System (ISMS) is a controlled approach to managing sensitive company information so that it remains secure. It encompasses people, processes and IT systems. |
Who should attend?
- Staff tasked with the implementation and management of a ISO 27001:2005 Information security management system
- Information security consultants
- The course is designed for people who have a good understanding of ISO 27001:2005 and ISO 17799:2005 Information security management systems, (attendance of Introduction to Information Security or the ISO 27001:2005 lead auditor course is recommended)
.
|
Benefits to Your Business
Both the objective and result of the course will be the construction of an effective ISMS under the expert tutelage and guidance of a BSI tutor. Take the knowledge and skills imparted during this exercise and use them to improve and protect your business.
|
Course Structure
A combination of tutorials, syndicate exercises and role-play, including the following topics:
- Background to Information Security
- Determination of scope and Information Security policy
- Identification of information assets
- Determination of the value of information assets
- Determination of risk and impacts
- Identification of control objective and controls
- Definition and implementation of polices
- Production and implementation of policies, standards and procedures
- Completion of ISMS documentation requirements
- Awareness training
- Production of a ISMS Project Implementation Plan
|
|
